Support Us — Your donation helps us keep running

Goal: 1000 CNY,Raised: 1000 CNY

100.0%
Donate Now
Associated Vulnerability
Clear Filters
Found 623 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2025-2935 Anti-Spam: Spam Protection | Block Spam Users, Comments, Forms <= 2024.7 - Cross-Site Request Forgery to Multiple Administrative Actions webguyioStop Spammers Classic Medium 5.4 2025-06-06 06:42:53 Deep Dive
CVE-2025-5341 Forminator <= 1.44.1 - Authenticated (Contributor+) Stored DOM-Based Cross-Site Scripting via id and data-size Parameters wpmudevForminator Forms – Contact Form, Payment Form & Custom Form Builder Medium 6.4 2025-06-05 11:15:06 Deep Dive
CVE-2025-4671 Profile Builder <= 3.13.8 - Authenticated (Contributor+) Stored Cross-Site Scripting via user_meta and compare Shortcodes cozmoslabsUser Profile Builder – Beautiful User Registration Forms, User Profiles & User Role Editor Medium 6.4 2025-06-03 11:22:26 Deep Dive
CVE-2025-49069 WordPress Contact Forms by Cimatti plugin <= 1.9.8 - Cross Site Request Forgery (CSRF) vulnerability cimattiContact Forms by Cimatti Medium 4.3 2025-06-02 18:49:26 Deep Dive
CVE-2025-4659 Integration for Salesforce and Contact Form 7, WPForms, Elementor, Formidable, Ninja Forms <= 1.4.4 - Unauthenticated Full Path Disclosure crmperksIntegration for Salesforce and Contact Form 7, WPForms, Elementor, Formidable, Ninja Forms Medium 5.3 2025-05-30 05:23:20 Deep Dive
CVE-2025-5055 Smart Forms <= 2.6.98 - Authenticated (Admin+) Stored Cross-Site Scripting edgarrojasSmart Forms – when you need more than just a contact form Medium 4.4 2025-05-24 02:23:04 Deep Dive
CVE-2025-47492 WordPress Drag and Drop File Upload for Elementor Forms plugin <= 1.4.3 - Arbitrary File Deletion Vulnerability add-ons.orgDrag and Drop File Upload for Elementor Forms High 8.6 2025-05-23 12:43:35 Deep Dive
CVE-2025-47513 WordPress Infocob CRM Forms plugin <= 2.4.0 - Arbitrary File Download vulnerability James LaforgeInfocob CRM Forms Medium 4.9 2025-05-23 12:43:34 Deep Dive
CVE-2025-2561 Ninja Forms < 3.10.1 - Admin+ Stored XSS UnknownNinja Forms--2025-05-19 06:00:06 Deep Dive
CVE-2025-2524 Ninja Forms < 3.10.1 - Admin+ Stored XSS UnknownNinja Forms--2025-05-19 06:00:05 Deep Dive
CVE-2025-2560 Ninja Forms < 3.10.1 - Admin+ Stored XSS UnknownNinja Forms--2025-05-19 06:00:05 Deep Dive
CVE-2024-8542 Everest Forms < 3.0.3.1 - Admin+ Stored XSS UnknownEverest Forms--2025-05-15 20:07:16 Deep Dive
CVE-2024-13940 Ninja Forms Webhooks <= 3.0.7 - Authenticated (Admin+) Server-Side Request Forgery via Form Webhook Ninja FormsNinja Forms Webhooks Medium 5.5 2025-05-14 08:22:08 Deep Dive
CVE-2025-47280 Umbraco.Forms has HTML injection vulnerability in 'Send email' workflow umbracoUmbraco.Forms.Issues--2025-05-13 17:06:57 Deep Dive
CVE-2025-3794 WPForms Lite <= 1.9.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'start_timestamp' Parameter smubWPForms – Easy Form Builder for WordPress – Contact Forms, Payment Forms, Surveys, & More Medium 5.4 2025-05-09 22:22:13 Deep Dive
CVE-2025-3468 NEX-Forms – Ultimate Form Builder – Contact forms and much more <= 8.9.1 - Authenticated (Custom) Stored Cross-Site Scripting webawaysNEX-Forms – Ultimate Forms Plugin for WordPress Medium 6.4 2025-05-08 11:13:45 Deep Dive
CVE-2025-4208 NEX-Forms – Ultimate Form Builder – Contact forms and much more <= 8.9.1 - Authenticated (Custom) Limited Code Execution via get_table_records Function webawaysNEX-Forms – Ultimate Forms Plugin for WordPress Medium 6.3 2025-05-08 11:13:44 Deep Dive
CVE-2025-47502 WordPress Mollie Forms plugin <= 2.7.12 - Cross Site Scripting (XSS) Vulnerability Nick van WobbieMollie Forms Medium 6.5 2025-05-07 14:19:57 Deep Dive
CVE-2025-47456 WordPress WP Gravity Forms Zendesk plugin <= 1.1.2 - Open Redirection Vulnerability CRM PerksWP Gravity Forms Zendesk Medium 4.7 2025-05-07 14:19:38 Deep Dive
CVE-2025-47454 WordPress WP Gravity Forms Dynamics CRM plugin <= 1.1.4 - Open Redirection Vulnerability CRM PerksWP Gravity Forms Dynamics CRM Medium 4.7 2025-05-07 14:19:37 Deep Dive